logstash解析系统的messages日志-白红宇

logstash解析系统的messages日志

阅读量：5983 次

发布时间：2019-06-20

本文共 746 字，大约阅读时间需要 2 分钟。

logstash解析系统日志的写法，output中的stdout为调试，生产可以移除

input {    redis {        host => "192.168.1.181"        port => 6379        db => "0"        data_type => "list"        key => "815"    }}filter {    grok {        match  => {                "message" => "%{SYSLOGLINE}"        }    }    mutate {        remove_field => ["prospector","logsource","beat","[message][0]","offset","@version","input"]    }    date {        match => ["timestamp","MMM dd HH:mm:ss"]    }    mutate {        remove_field => ["timestamp"]    }}output {    elasticsearch {        hosts  => ["10.78.1.184:9200","10.78.1.185:9200","10.78.1.188:9200"]        index  => "message-%{+YYYY.MM.dd}"    }    stdout { codec => rubydebug }}

转载于:https://blog.51cto.com/liuzhengwei521/2151159

你可能感兴趣的文章

找到思聪王

查看>>

[译] 学习 Spring Security（五）：重发验证邮件

查看>>

快速的React Native开发方法

查看>>

rabbitmq中文教程python版 - 工作队列

查看>>

SpringBoot 1024行代码 - Eureka Server

查看>>